Blog

Cisco IPv6 IOS Hardening – DoD Style

***Updated on 14 May 2014 – regarding NET-IPv6-022, See below*** Thousands of network engineers in the DoD out there looking at implementing IPv6 now have to address a few Security and Technical Implementation Guidance (STIG) items that they used to just annotate as “Not Applicable – NA.”  Now, IPv6 security is important.  If you are […]

Cisco IPv6 IOS Hardening – DoD Style Read More »

Why 802.1x is Not Enough: How to Implement SeND – Part 2

Last month I presented the case as to why 802.1x authentication is not enough for local network (wired or wireless) security (go back here to read).  In this post I will present an alternative: IPv6 Secure Neighbor Discovery (SeND).  If you have an IPv6 enterprise, small IPv6 deployment, or a little IPv6 lab then pay

Why 802.1x is Not Enough: How to Implement SeND – Part 2 Read More »

Tachyon Dynamics helps NetApp Achieve DoD UC APL Certification

Fairfax, VA — (August 16, 2012) – NetApp, Inc. (NASDAQ: NTAP), a leader in data storage and storage provisioning enterprise and data center products achieved the Defense Department Unified Capabilities Approved Products List (UC APL) certification with the help of the Washington DC-based Information Technology firm: Tachyon Dynamics. NetApp received its certification as the first

Tachyon Dynamics helps NetApp Achieve DoD UC APL Certification Read More »

Why 802.1x is Not Enough: Use IPv6 SeND – Part 1

There’s been much debate in the IPv6 community regarding the abysmal support or IPv6 Secure Neighbour Discovery (SeND).  To get you up to speed on what IPv6 Secure Neighbour Discovery is think IPv6 + 802.1x-like + ARP security + PKI environment.  Later in this blog I’ll show you how to set up an IPv6 SeND

Why 802.1x is Not Enough: Use IPv6 SeND – Part 1 Read More »

SDN, Open Flow and Cisco ONE: A First Look

Software Defined Networking (SDN) is the new buzzword in IT today.  It has become synonymous with things like cloud, cyber security, CDN, and yes even IPv6.  The curious thing is that they are all inter-related.  Open Flow, which is a specification of the Open Network Foundation, has defined this new phenomenon as something that, “enables

SDN, Open Flow and Cisco ONE: A First Look Read More »

US Government IPv6 Enablement – 4-month Status Check

Well, it is now roughly four months until the U.S. Federal Government is supposed to have its publicly-facing network services enabled for IPv6 by 30 September 2012 according to the White House directive in 2010.  More specifically: Upgrade public/external facing servers and services (e.g. web, email, DNS, ISP services, etc) to operationally use native IPv6

US Government IPv6 Enablement – 4-month Status Check Read More »

Facebook is IPv6-enabled now – without a whitelist

UPDATE 22 May 2012 It looks as though Facebook is now 100% IPv6-enabled, without white-list filtering!  See the dig below: The Updated Dig mylaptop:~$ dig @8.8.8.8 AAAA www.facebook.com ; <<>> DiG 9.8.1-P1 <<>> @8.8.8.8 AAAA www.facebook.com ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 36329

Facebook is IPv6-enabled now – without a whitelist Read More »

The Importance of DoD UC APL Certification Testing

We just posted a white paper on our website that discusses the various reasons why getting commercial IT products tested at the Joint Interoperability Test Command (JITC) for DoD Unified Capabilities Requirements (UC) Approved Products List (APL) certification is very important. We also illustrate the advantages it gives product vendors selling in the U.S. Federal IT

The Importance of DoD UC APL Certification Testing Read More »

Scroll to Top